Thousands of companies had their data captured by DataSpii. The following is only a fraction of those companies:
| Impacted companies | Leaked data made accessible via Company X.
|
| 23andMe | Shared 23andMe reports |
| AlienVault | JIRA data from alienvault.atlassian.net |
| Amazon Web Services | AWS S3 query string authentication parameters |
| American Airlines | Passenger information including: First name, last name, flight confirmation number |
| Amgen | LAN network data collected from visitor(s) on the amgen inc. ISP network |
| Apple | Last 4 digits of credit cards used for Apple product orders, credit card type, store used to pickup an Apple order, first and last name of the Apple order customer, iCloud Email addresses Shared iCloud Photos including iOS user first and last name. |
| AthenaHealth | LAN network data collected from visitor(s) on the athenahealth ISP network |
| Atlassian | Near real-time data of corporate issues and employee-assigned tasks from thousands of atlassian.net subdomains. |
| Blue Origin | JIRA data hosted on blueorigin.com domain, originating from visitor(s) city listed as: Kent, Washington |
| BuzzFeed | JIRA data from buzzfeed.atlassian.net |
| CapitalOne | Zoom meeting URLs from capitalone.zoom.us |
| CardinalHealth | JIRA data from cardinalhealth.atlassian.net |
| Dell | Zoom meeting URLs from dell.zoom.us |
| DrChrono | Patient names, names of medication |
| Epic Systems | LAN network data collected from visitor(s) on the epic systems corporation ISP network |
| Facebook Messenger attachments including tax returns | |
| FireEye | JIRA data hosted on fireeye.com domain, originating from visitors on the fireeye, inc. ISP network |
| Intuit | Quickbooks invoices |
| Kaiser Permanente | LAN network data collected from visitor(s) of kaiser foundation health plan ISP network
|
| Kareo | Patient names |
| Merck | LAN network data collected from visitor(s) on merck and co. inc. ISP network |
| Microsoft OneDrive | Files shared on OneDrive including tax returns |
| NBCDigital | JIRA data from nbcdigital.atlassian.net |
| Nest | Shared Nest security camera clips |
| NetApp | Zoom meeting URLs from netapp.zoom.us |
| Oracle | Zoom meeting URLs from oracle.zoom.us |
| Palo Alto Networks | LAN network data collected from visitor(s) of Palo Alto Networks ISP network |
| Pfizer | LAN network data collected from visitor(s) of pfizer inc. ISP network |
| JIRA data from reddit.atlassian.net | |
| Roche | LAN network data collected from visitor(s) on hoffmann laroche inc. ISP network |
| Shopify | Impacted by AWS S3 query string parameter leak |
| Skype | Shared Skype chat URLs |
| Southwest Airlines | Passenger information including: First name, last name, and flight confirmation number Members of Company X can see these users checking-in in near real-time. Such data can be used to modify a flight, cancel a flight, or stalk the person, etc. |
| SpaceX | LAN network data collected from visitor(s) on the space exploration technologies corporation ISP network |
| Symantec | LAN network data collected from visitor(s) on the symantec corporation ISP network |
| Tesla | LAN network data collected from visitor(s) on the tesla inc. ISP network |
| Tmobile | JIRA data from tmobile.atlassian.net |
| Trend Micro | JIRA data collected from visitors on a non-publicly resolvable trendmicro.com subdomain. |
| Uber | Passenger pickup and drop-off locations for impacted users that booked rides via m.uber.com, Zoom meeting URLs from uber.zoom.us |
| UCLA | Zoom meeting URLs from ucla.zoom.us |
| Under Armour | JIRA data from underarmour.atlassian.net |
| United Airlines | Passenger last names and their flight confirmation numbers |
| Walmart | Zoom meeting URLs from walmart.zoom.us |
| Zendesk | Support ticket attachments, which (via HTTP referer) can even further be refined by the Zendesk client, (e.g., Venmo). |
| Zoom Video Communications | Zoom meeting URLs |